It's my understanding that TeamCity stores SCM credentials in cleartext on disk. Is this correct?
I would much prefer to send my credentials (or at least my password) every time I submitted a remote job, so that I could avoid having to store any sensitive data on the TeamCity server. This is particularly important since the TeamCity server presumably ends up storing passwords for all the different participants in a project, so whoever has sufficient access to that machine has access to all those passwords.
To the best of my knowledge, I never entered my svn password into TeamCity's UI. So, that must mean that it picked it up from my IntelliJ settings when I connected from IntelliJ. This, in turn, presumably means that the only reason that TeamCity needs this data is to perform the delayed commit. It would seem that TeamCity could just keep that data in memory for the duration of the test runs, and then throw away the information after the run, instead of actually persisting it to disk.